Anonymous Identity when using machine auth with Certificates.
I have two different ISE enviroments both using Certificate based machine authentication. One environment uses the Windows Native supplicant the other uses Anyconnect NAM. Both environments get occasional errors upon authentication. For some reason the devices appear to be presenting an identity using "anonymous" and then failing. This happens randomly on several different devices. The same devices will connect properly using the machine certificate as well randomly. So I am a little at a loss since it doesn't happen all the time, the devices will present the proper identity sometimes but not others. Has anyone seen this issue or better yet know how to resolve it?
Hi Mani,
Thanks for the reply.
The Computer account for the 7925 is just located in a custom OU in AD. We want to use this account for authorization only. Basically so that we can allow Windows and non-windows clients to connect to our WLANs, but have all of the authorization done within AD group membership.
That's interesting about the host\machine.domain format. Would I be correct in thinking the "host/" part is already in the original EAP message from the client, or added somewhere along the way, perhaps by the wireless lan controller?
Do you know if there's a way to configure the 7925 to send in this format? After all, it's a host that im authenticating, not a user...
I've had this working on ACS4.2, but only using LDAP for the attribute lookup - and LDAP doesn't care about host vs user. I suppose I could do the same in ACS 5.1 using ldap but would prefer to use the AD integration,
Thanks,
Peter
Similar Messages
-
I would love some help with this issue. I have configured my SharePoint foundation 2010 site to use Claims Based Auth with Certificate authentication method with ADFS 2.0 I have a test account set up with lab.acme.com to use the ACS.
When I log into my site using Windows Auth, everything is great. However when I log in and select my ACS token issuer, I get sent, to the logon page of the ADFS, after selected the ADFS method. My browser prompt me which Certificate identity I want
to use to log in and after 3-5 second
and return me the logon page with error message “Authentication failed”
I base my setup on the technet article
http://blogs.technet.com/b/speschka/archive/2010/07/30/configuring-sharepoint-2010-and-adfs-v2-end-to-end.aspx
I validated than all my certificate are valid and able to retrieve the crl
I got in eventlog id 300
The Federation Service failed to issue a token as a result of an error during processing of the WS-Trust request.
Request type: http://schemas.xmlsoap.org/ws/2005/02/trust/RST/Issue
Additional Data
Exception details:
Microsoft.IdentityModel.SecurityTokenService.FailedAuthenticationException: MSIS3019: Authentication failed. ---> System.IdentityModel.Tokens.SecurityTokenValidationException:
ID4070: The X.509 certificate 'CN=Me, OU=People, O=Acme., C=COM' chain building failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. 'A certification chain processed
correctly, but one of the CA certificates is not trusted by the policy provider.
at Microsoft.IdentityModel.X509CertificateChain.Build(X509Certificate2 certificate)
at Microsoft.IdentityModel.Tokens.X509NTAuthChainTrustValidator.Validate(X509Certificate2 certificate)
at Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.ValidateToken(SecurityToken token)
at Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSubject()
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
--- End of inner exception stack trace ---
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.BeginGetScope(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
at Microsoft.IdentityModel.SecurityTokenService.SecurityTokenService.BeginIssue(IClaimsPrincipal principal, RequestSecurityToken request, AsyncCallback callback, Object state)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.DispatchRequestAsyncResult..ctor(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginDispatchRequest(DispatchContext dispatchContext, AsyncCallback asyncCallback, Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.ProcessCoreAsyncResult..ctor(WSTrustServiceContract contract, DispatchContext dispatchContext, MessageVersion messageVersion, WSTrustResponseSerializer responseSerializer, WSTrustSerializationContext
serializationContext, AsyncCallback asyncCallback, Object asyncState)
at Microsoft.IdentityModel.Protocols.WSTrust.WSTrustServiceContract.BeginProcessCore(Message requestMessage, WSTrustRequestSerializer requestSerializer, WSTrustResponseSerializer responseSerializer, String requestAction, String responseAction, String
trustNamespace, AsyncCallback callback, Object state)
System.IdentityModel.Tokens.SecurityTokenValidationException: ID4070: The X.509 certificate 'CN=Me, OU=People, O=acme., C=com' chain building
failed. The certificate that was used has a trust chain that cannot be verified. Replace the certificate or change the certificateValidationMode. 'A certification chain processed correctly, but one of the CA certificates is not trusted by the policy provider.
at Microsoft.IdentityModel.X509CertificateChain.Build(X509Certificate2 certificate)
at Microsoft.IdentityModel.Tokens.X509NTAuthChainTrustValidator.Validate(X509Certificate2 certificate)
at Microsoft.IdentityModel.Tokens.X509SecurityTokenHandler.ValidateToken(SecurityToken token)
at Microsoft.IdentityModel.Tokens.SecurityTokenElement.GetSubject()
at Microsoft.IdentityServer.Service.SecurityTokenService.MSISSecurityTokenService.GetOnBehalfOfPrincipal(RequestSecurityToken request, IClaimsPrincipal callerPrincipal)
thx
Stef71This is perfectly correct on my case I was not adding the root properly you must add the CA and the ADFS as well, which is twice you can see below my results.
on my case was :
PS C:\Users\administrator.domain> $root = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("C:\
cer\SP2K10\ad0001.cer")
PS C:\Users\administrator.domain> New-SPTrustedRootAuthority -Name "domain.ad0001" -Certificate $root
Certificate : [Subject]
CN=domain.AD0001CA, DC=domain, DC=com
[Issuer]
CN=domain.AD0001CA, DC=portal, DC=com
[Serial Number]
blablabla
[Not Before]
22/07/2014 11:32:05
[Not After]
22/07/2024 11:42:00
[Thumbprint]
blablabla
Name : domain.ad0001
TypeName : Microsoft.SharePoint.Administration.SPTrustedRootAuthority
DisplayName : domain.ad0001
Id : blablabla
Status : Online
Parent : SPTrustedRootAuthorityManager
Version : 17164
Properties : {}
Farm : SPFarm Name=SharePoint_Config
UpgradedPersistedProperties : {}
PS C:\Users\administrator.domain> $cert = New-Object System.Security.Cryptography.X509Certificates.X509Certificate2("C:\
cer\SP2K10\ADFS_Signing.cer")
PS C:\Users\administrator.domain> New-SPTrustedRootAuthority -Name "Token Signing Cert" -Certificate $cert
Certificate : [Subject]
CN=ADFS Signing - adfs.domain
[Issuer]
CN=ADFS Signing - adfs.domain
[Serial Number]
blablabla
[Not Before]
23/07/2014 07:14:03
[Not After]
23/07/2015 07:14:03
[Thumbprint]
blablabla
Name : Token Signing Cert
TypeName : Microsoft.SharePoint.Administration.SPTrustedRootAuthority
DisplayName : Token Signing Cert
Id : blablabla
Status : Online
Parent : SPTrustedRootAuthorityManager
Version : 17184
Properties : {}
Farm : SPFarm Name=SharePoint_Config
UpgradedPersistedProperties : {}
PS C:\Users\administrator.PORTAL> -
Revision: 1720
Author: [email protected]
Date: 2008-05-14 14:50:06 -0700 (Wed, 14 May 2008)
Log Message:
Bugs: LCDS-304 - Authentication not working in all cases when using security constraint with NIO endpoints.
QA: Yes
Doc: No
Details:
Update to the TomcatLoginCommand to work correctly with NIO endpoints.
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-304
Modified Paths:
blazeds/branches/3.0.x/modules/opt/src/tomcat/flex/messaging/security/TomcatLoginCommand. javaRevision: 1720
Author: [email protected]
Date: 2008-05-14 14:50:06 -0700 (Wed, 14 May 2008)
Log Message:
Bugs: LCDS-304 - Authentication not working in all cases when using security constraint with NIO endpoints.
QA: Yes
Doc: No
Details:
Update to the TomcatLoginCommand to work correctly with NIO endpoints.
Ticket Links:
http://bugs.adobe.com/jira/browse/LCDS-304
Modified Paths:
blazeds/branches/3.0.x/modules/opt/src/tomcat/flex/messaging/security/TomcatLoginCommand. java -
Strange behaviour when using connection pooling with proxy authentication
All
I have developed an ASP.NET 1.1 Web application that uses ODP.NET 9.2.0.4 accessing Oracle Database 8i (which is to be upgraded to 10g in the coming months). I have enabled connection pooling and implemented proxy authentication.
I am observing a strange behaviour in the live environment. If two users (User 1 and User 2) are executing SQL statements at the same time (concurrent threads in IIS), the following is occurring:
* User 1 opens a new connection, executes a SELECT statement, and closes this connection. The audit log, which uses the USER function, shows User 1 executed this statement.
* User 2 opens the same connection (before it is released to the connection pool?), excutes an INSERT statement, and closes this connection. The audit log shows User 1, not User 2, executed this statement.
Is this a known issue when using connection pooling with proxy authentication? I appreciate your help.
Regards,
ChrisHi Chris,
I tried to reproduce your complaint, but was unable to. I didnt use auditting however, just a series of "select user from dual" with proxy authentication. You might want to see if you can put together a small complete testcase for this and open a sr with support.
Cheers
Greg -
Scope when using a JavaBean with JSP
what is the meaning of this question .....?
"Which of the following can not be used as the scope when using a JavaBean with JSP? "
question 4
site :http://java.sun.com/developer/Quizzes/jsptut/The question is clearly written. I don't see how you can be confused. But let's assume you are since you would not have posed the question.
Dumbed-down:
There are 4 scopes or areas of variable visibility in JavaServer Pages. Which of those can areas can not be used with JavaBeans?
Does that help? -
When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG
When using Camera RAW after editing photo I can only save file as DNG, I want to save as JPEG. HOW??
THANKS LLOYDBARBARA,Yes, you are so right, I was deceived by the eve button, Just tried it and it WORKS GREAT-Thanks for the help.
THANKS AGAIN AND HAVE A GOOD DAY Lloyd
From: Barbara B. <[email protected]>
To: Lloyd Bennett <[email protected]>
Sent: Tuesday, January 13, 2015 11:46 AM
Subject: When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG
When using Camera raw with PS12 after editing, I cannot save my file in JPEG, only DNG
created by Barbara B. in Photoshop Elements - View the full discussionYou are being deceived by the Save button, like most people. That button is not the Save As button, really, but a link to the DNG converter. To save your raw file in an image format, click the Open button instead and then save in the format of your choice in the editor. If the reply above answers your question, please take a moment to mark this answer as correct by visiting: https://forums.adobe.com/message/7092207#7092207 and clicking ‘Correct’ below the answer Replies to this message go to everyone subscribed to this thread, not directly to the person who posted the message. To post a reply, either reply to this email or visit the message page: Please note that the Adobe Forums do not accept email attachments. If you want to embed an image in your message please visit the thread in the forum and click the camera icon: https://forums.adobe.com/message/7092207#7092207 To unsubscribe from this thread, please visit the message page at , click "Following" at the top right, & "Stop Following" Start a new discussion in Photoshop Elements by email or at Adobe Community For more information about maintaining your forum email notifications please go to https://forums.adobe.com/thread/1516624. -
How to avoid data repetation when using select statements with innerjoin
how to avoid data repetation when using select statements with innerjoin.
thanks in advance,
satheeshyou can use a query like this...
SELECT DISTINCT
frg~prc_group1 "Product Group 1
frg~prc_group2 "Product Group 2
frg~prc_group3 "Product Group 3
frg~prc_group4 "Product Group 4
frg~prc_group5 "Product Group 5
prc~product_id "Product ID
txt~short_text "Product Description
UP TO 10 ROWS
INTO TABLE l_i_data
FROM
Joining CRMM_PR_SALESG and
COMM_PR_FRG_ROD
crmm_pr_salesg AS frg
INNER JOIN comm_pr_frg_rod AS prd
ON frgfrg_guid = prdfragment_guid
Joining COMM_PRODUCT and
COMM_PR_FRG_ROD
INNER JOIN comm_product AS prc
ON prdproduct_guid = prcproduct_guid
Joining COMM_PRSHTEXT and
COMM_PR_FRG_ROD
INNER JOIN comm_prshtext AS txt
ON prdproduct_guid = txtproduct_guid
WHERE frg~prc_group1 IN r_zprc_group1
AND frg~prc_group2 IN r_zprc_group2
AND frg~prc_group3 IN r_zprc_group3
AND frg~prc_group4 IN r_zprc_group4
AND frg~prc_group5 IN r_zprc_group5.
reward it it helps
Edited by: Apan Kumar Motilal on Jun 24, 2008 1:57 PM -
How do you stop needing to verify email password when using yahoo.att with Mac Mail
How do you stop needing to verify email password when using yahoo.att with Mac Mail?
Nevermind, I fixed it (I think). I went into Settings | Accounts & Sync and found Yahoo at the bottom of the list (alphabetically). I selected it and it had an optiion to delete the account, which I did.
-
why my iphone 4s getting hot when using 3g plus with data?
then my phone left side speaker didnt work when i list songs?It is normal for the phone to get hot when your using data such as YouTube videos, streaming music etc.. And as for the left speaker not working, the left speaker is a microphone, the right one is for sound. Don't worry, everything your iPhone is doing is normal.
-
when using apple tv with my ipad, the mirroring function does not work, screen goes black, what is the issue? My son's Ipad(same as kind as mine) works ok with the apple tv but mine does not. Any suggestions?
Hello Nina Izurin,
While written for the iPhone, the troubleshooting below can help resolve issues with your iPad's camera, as well.
Camera isn't functioning or has undesired image quality
If the screen shows a closed lens or black image, force quit the Camera app.
If you do not see the Camera app on the Home screen, try searching for it in Spotlight. If the camera does not show up in the search, check to make sure that Restrictions are not turned on by tappingSettings > General > Restrictions.
Ensure the camera lens is clean and free from any obstructions. Use a microfiber polishing cloth to clean the lens.
Cases can interfere with the camera and the flash. Try gently cleaning the lens with a clean dry cloth or removing the case if you see image or color-quality issues with photos.
Try turning iPhone off and then back on.
Tap to focus the camera on the subject. The image may pulse or briefly go in and out of focus as it adjusts.
Try to remain steady while focusing:
Still images: Remain steady while taking the picture. If you move too far in any direction, the camera automatically refocuses to the center.
Note: If you take a picture with iPhone turned sideways, it is automatically saved in landscape orientation.
Video: Adjust focus before you begin recording. You can also tap to readjust focus while recording. Exiting the Camera application while recording will stop recording and will save the video to the Camera Roll.
Note: Video-recording features are not available on original iPhone or iPhone 3G.
If your iPhone has a front and rear camera, try switching between them to verify if the issue persists on both.
My issue is still not resolved. What do I do next?
Contact Apple Support.
iPhone: Hardware troubleshooting
http://support.apple.com/kb/TS2802
Cheers,
Allen -
Exception report when using tomcat 5 with JDBC
i followed this guide to setup the JDBC with my TOMCAT 5
http://jakarta.apache.org/tomcat/tomcat-5.0-doc/jndi-datasource-examples-howto.html#Database%20Connection%20Pool%20(DBCP)%20Configurations
but i seem to get this error
exception
javax.servlet.ServletException: Unable to get connection, DataSource invalid: "org.apache.commons.dbcp.SQLNestedException: Cannot create JDBC driver of class '' for connect URL 'null'"
org.apache.jasper.runtime.PageContextImpl.doHandlePageException(PageContextImpl.java:846)
org.apache.jasper.runtime.PageContextImpl.handlePageException(PageContextImpl.java:779)
org.apache.jsp.SID.test_jsp._jspService(test_jsp.java:81)
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
root cause
javax.servlet.jsp.JspException: Unable to get connection, DataSource invalid: "org.apache.commons.dbcp.SQLNestedException: Cannot create JDBC driver of class '' for connect URL 'null'"
org.apache.taglibs.standard.tag.common.sql.QueryTagSupport.getConnection(QueryTagSupport.java:276)
org.apache.taglibs.standard.tag.common.sql.QueryTagSupport.doStartTag(QueryTagSupport.java:159)
org.apache.jsp.SID.test_jsp._jspx_meth_sql_query_0(test_jsp.java:100)
org.apache.jsp.SID.test_jsp._jspService(test_jsp.java:58)
org.apache.jasper.runtime.HttpJspBase.service(HttpJspBase.java:94)
javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
org.apache.jasper.servlet.JspServletWrapper.service(JspServletWrapper.java:324)
org.apache.jasper.servlet.JspServlet.serviceJspFile(JspServlet.java:292)
org.apache.jasper.servlet.JspServlet.service(JspServlet.java:236)
javax.servlet.http.HttpServlet.service(HttpServlet.java:802)
i can compile *.java and run them when they need the jdbc drivers to interact with mysql 5 database.
This is my server.xml
<!-- Example Server Configuration File -->
<!-- Note that component elements are nested corresponding to their
parent-child relationships with each other -->
<!-- A "Server" is a singleton element that represents the entire JVM,
which may contain one or more "Service" instances. The Server
listens for a shutdown command on the indicated port.
Note: A "Server" is not itself a "Container", so you may not
define subcomponents such as "Valves" or "Loggers" at this level.
-->
<Server port="8005" shutdown="SHUTDOWN" debug="0">
<!-- Comment these entries out to disable JMX MBeans support -->
<!-- You may also configure custom components (e.g. Valves/Realms) by
including your own mbean-descriptor file(s), and setting the
"descriptors" attribute to point to a ';' seperated list of paths
(in the ClassLoader sense) of files to add to the default list.
e.g. descriptors="/com/myfirm/mypackage/mbean-descriptor.xml"
-->
<Listener className="org.apache.catalina.mbeans.ServerLifecycleListener"
debug="0"/>
<Listener className="org.apache.catalina.mbeans.GlobalResourcesLifecycleListener"
debug="0"/>
<!-- Global JNDI resources -->
<GlobalNamingResources>
<!-- Test entry for demonstration purposes -->
<Environment name="simpleValue" type="java.lang.Integer" value="30"/>
<!-- Editable user database that can also be used by
UserDatabaseRealm to authenticate users -->
<Resource name="UserDatabase" auth="Container"
type="org.apache.catalina.UserDatabase"
description="User database that can be updated and saved">
</Resource>
<ResourceParams name="UserDatabase">
<parameter>
<name>factory</name>
<value>org.apache.catalina.users.MemoryUserDatabaseFactory</value>
</parameter>
<parameter>
<name>pathname</name>
<value>conf/tomcat-users.xml</value>
</parameter>
</ResourceParams>
</GlobalNamingResources>
<!-- A "Service" is a collection of one or more "Connectors" that share
a single "Container" (and therefore the web applications visible
within that Container). Normally, that Container is an "Engine",
but this is not required.
Note: A "Service" is not itself a "Container", so you may not
define subcomponents such as "Valves" or "Loggers" at this level.
-->
<!-- Define the Tomcat Stand-Alone Service -->
<Service name="Catalina">
<!-- A "Connector" represents an endpoint by which requests are received
and responses are returned. Each Connector passes requests on to the
associated "Container" (normally an Engine) for processing.
By default, a non-SSL HTTP/1.1 Connector is established on port 8080.
You can also enable an SSL HTTP/1.1 Connector on port 8443 by
following the instructions below and uncommenting the second Connector
entry. SSL support requires the following steps (see the SSL Config
HOWTO in the Tomcat 5 documentation bundle for more detailed
instructions):
* If your JDK version 1.3 or prior, download and install JSSE 1.0.2 or
later, and put the JAR files into "$JAVA_HOME/jre/lib/ext".
* Execute:
%JAVA_HOME%\bin\keytool -genkey -alias tomcat -keyalg RSA (Windows)
$JAVA_HOME/bin/keytool -genkey -alias tomcat -keyalg RSA (Unix)
with a password value of "changeit" for both the certificate and
the keystore itself.
By default, DNS lookups are enabled when a web application calls
request.getRemoteHost(). This can have an adverse impact on
performance, so you can disable it by setting the
"enableLookups" attribute to "false". When DNS lookups are disabled,
request.getRemoteHost() will return the String version of the
IP address of the remote client.
-->
<!-- Define a non-SSL Coyote HTTP/1.1 Connector on port 8080 -->
<Connector port="8080"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" redirectPort="8443" acceptCount="100"
debug="0" connectionTimeout="20000"
disableUploadTimeout="true" />
<!-- Note : To disable connection timeouts, set connectionTimeout value
to 0 -->
<!-- Note : To use gzip compression you could set the following properties :
compression="on"
compressionMinSize="2048"
noCompressionUserAgents="gozilla, traviata"
compressableMimeType="text/html,text/xml"
-->
<!-- Define a SSL Coyote HTTP/1.1 Connector on port 8443 -->
<!--
<Connector port="8443"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false" disableUploadTimeout="true"
acceptCount="100" debug="0" scheme="https" secure="true"
clientAuth="false" sslProtocol="TLS" />
-->
<!-- Define a Coyote/JK2 AJP 1.3 Connector on port 8009 -->
<Connector port="8009"
enableLookups="false" redirectPort="8443" debug="0"
protocol="AJP/1.3" />
<!-- Define a Proxied HTTP/1.1 Connector on port 8082 -->
<!-- See proxy documentation for more information about using this. -->
<!--
<Connector port="8082"
maxThreads="150" minSpareThreads="25" maxSpareThreads="75"
enableLookups="false"
acceptCount="100" debug="0" connectionTimeout="20000"
proxyPort="80" disableUploadTimeout="true" />
-->
<!-- An Engine represents the entry point (within Catalina) that processes
every request. The Engine implementation for Tomcat stand alone
analyzes the HTTP headers included with the request, and passes them
on to the appropriate Host (virtual host). -->
<!-- You should set jvmRoute to support load-balancing via JK/JK2 ie :
<Engine name="Standalone" defaultHost="localhost" debug="0" jvmRoute="jvm1">
-->
<!-- Define the top level container in our container hierarchy -->
<Engine name="Catalina" defaultHost="localhost" debug="0">
<!-- The request dumper valve dumps useful debugging information about
the request headers and cookies that were received, and the response
headers and cookies that were sent, for all requests received by
this instance of Tomcat. If you care only about requests to a
particular virtual host, or a particular application, nest this
element inside the corresponding <Host> or <Context> entry instead.
For a similar mechanism that is portable to all Servlet 2.4
containers, check out the "RequestDumperFilter" Filter in the
example application (the source for this filter may be found in
"$CATALINA_HOME/webapps/examples/WEB-INF/classes/filters").
Request dumping is disabled by default. Uncomment the following
element to enable it. -->
<!--
<Valve className="org.apache.catalina.valves.RequestDumperValve"/>
-->
<!-- Global logger unless overridden at lower levels -->
<Logger className="org.apache.catalina.logger.FileLogger"
prefix="catalina_log." suffix=".txt"
timestamp="true"/>
<!-- Because this Realm is here, an instance will be shared globally -->
<!-- This Realm uses the UserDatabase configured in the global JNDI
resources under the key "UserDatabase". Any edits
that are performed against this UserDatabase are immediately
available for use by the Realm. -->
<Realm className="org.apache.catalina.realm.UserDatabaseRealm"
debug="0" resourceName="UserDatabase"/>
<!-- Comment out the old realm but leave here for now in case we
need to go back quickly -->
<!--
<Realm className="org.apache.catalina.realm.MemoryRealm" />
-->
<!-- Replace the above Realm with one of the following to get a Realm
stored in a database and accessed via JDBC -->
<!--
<Realm className="org.apache.catalina.realm.JDBCRealm" debug="99"
driverName="org.gjt.mm.mysql.Driver"
connectionURL="jdbc:mysql://localhost/authority"
connectionName="test" connectionPassword="test"
userTable="users" userNameCol="user_name" userCredCol="user_pass"
userRoleTable="user_roles" roleNameCol="role_name" />
-->
<!--
<Realm className="org.apache.catalina.realm.JDBCRealm" debug="99"
driverName="oracle.jdbc.driver.OracleDriver"
connectionURL="jdbc:oracle:thin:@ntserver:1521:ORCL"
connectionName="scott" connectionPassword="tiger"
userTable="users" userNameCol="user_name" userCredCol="user_pass"
userRoleTable="user_roles" roleNameCol="role_name" />
-->
<!--
<Realm className="org.apache.catalina.realm.JDBCRealm" debug="99"
driverName="sun.jdbc.odbc.JdbcOdbcDriver"
connectionURL="jdbc:odbc:CATALINA"
userTable="users" userNameCol="user_name" userCredCol="user_pass"
userRoleTable="user_roles" roleNameCol="role_name" />
-->
<!-- Define the default virtual host
Note: XML Schema validation will not work with Xerces 2.2.
-->
<Host name="localhost" debug="0" appBase="webapps"
unpackWARs="true" autoDeploy="true"
xmlValidation="false" xmlNamespaceAware="false">
<!-- Defines a cluster for this node,
By defining this element, means that every manager will be changed.
So when running a cluster, only make sure that you have webapps in there
that need to be clustered and remove the other ones.
A cluster has the following parameters:
className = the fully qualified name of the cluster class
name = a descriptive name for your cluster, can be anything
debug = the debug level, higher means more output
mcastAddr = the multicast address, has to be the same for all the nodes
mcastPort = the multicast port, has to be the same for all the nodes
mcastBindAddr = bind the multicast socket to a specific address
mcastTTL = the multicast TTL if you want to limit your broadcast
mcastSoTimeout = the multicast readtimeout
mcastFrequency = the number of milliseconds in between sending a "I'm alive" heartbeat
mcastDropTime = the number a milliseconds before a node is considered "dead" if no heartbeat is received
tcpThreadCount = the number of threads to handle incoming replication requests, optimal would be the same amount of threads as nodes
tcpListenAddress = the listen address (bind address) for TCP cluster request on this host,
in case of multiple ethernet cards.
auto means that address becomes
InetAddress.getLocalHost().getHostAddress()
tcpListenPort = the tcp listen port
tcpSelectorTimeout = the timeout (ms) for the Selector.select() method in case the OS
has a wakup bug in java.nio. Set to 0 for no timeout
printToScreen = true means that managers will also print to std.out
expireSessionsOnShutdown = true means that
useDirtyFlag = true means that we only replicate a session after setAttribute,removeAttribute has been called.
false means to replicate the session after each request.
false means that replication would work for the following piece of code:
<%
HashMap map = (HashMap)session.getAttribute("map");
map.put("key","value");
%>
replicationMode = can be either 'pooled', 'synchronous' or 'asynchronous'.
* Pooled means that the replication happens using several sockets in a synchronous way. Ie, the data gets replicated, then the request return. This is the same as the 'synchronous' setting except it uses a pool of sockets, hence it is multithreaded. This is the fastest and safest configuration. To use this, also increase the nr of tcp threads that you have dealing with replication.
* Synchronous means that the thread that executes the request, is also the
thread the replicates the data to the other nodes, and will not return until all
nodes have received the information.
* Asynchronous means that there is a specific 'sender' thread for each cluster node,
so the request thread will queue the replication request into a "smart" queue,
and then return to the client.
The "smart" queue is a queue where when a session is added to the queue, and the same session
already exists in the queue from a previous request, that session will be replaced
in the queue instead of replicating two requests. This almost never happens, unless there is a
large network delay.
-->
<!--
When configuring for clustering, you also add in a valve to catch all the requests
coming in, at the end of the request, the session may or may not be replicated.
A session is replicated if and only if all the conditions are met:
1. useDirtyFlag is true or setAttribute or removeAttribute has been called AND
2. a session exists (has been created)
3. the request is not trapped by the "filter" attribute
The filter attribute is to filter out requests that could not modify the session,
hence we don't replicate the session after the end of this request.
The filter is negative, ie, anything you put in the filter, you mean to filter out,
ie, no replication will be done on requests that match one of the filters.
The filter attribute is delimited by ;, so you can't escape out ; even if you wanted to.
filter=".*\.gif;.*\.js;" means that we will not replicate the session after requests with the URI
ending with .gif and .js are intercepted.
The deployer element can be used to deploy apps cluster wide.
Currently the deployment only deploys/undeploys to working members in the cluster
so no WARs are copied upons startup of a broken node.
The deployer watches a directory (watchDir) for WAR files when watchEnabled="true"
When a new war file is added the war gets deployed to the local instance,
and then deployed to the other instances in the cluster.
When a war file is deleted from the watchDir the war is undeployed locally
and cluster wide
-->
<!--
<Cluster className="org.apache.catalina.cluster.tcp.SimpleTcpCluster"
managerClassName="org.apache.catalina.cluster.session.DeltaManager"
expireSessionsOnShutdown="false"
useDirtyFlag="true">
<Membership
className="org.apache.catalina.cluster.mcast.McastService"
mcastAddr="228.0.0.4"
mcastPort="45564"
mcastFrequency="500"
mcastDropTime="3000"/>
<Receiver
className="org.apache.catalina.cluster.tcp.ReplicationListener"
tcpListenAddress="auto"
tcpListenPort="4001"
tcpSelectorTimeout="100"
tcpThreadCount="6"/>
<Sender
className="org.apache.catalina.cluster.tcp.ReplicationTransmitter"
replicationMode="pooled"/>
<Valve className="org.apache.catalina.cluster.tcp.ReplicationValve"
filter=".*\.gif;.*\.js;.*\.jpg;.*\.htm;.*\.html;.*\.txt;"/>
<Deployer className="org.apache.catalina.cluster.deploy.FarmWarDeployer"
tempDir="/tmp/war-temp/"
deployDir="/tmp/war-deploy/"
watchDir="/tmp/war-listen/"
watchEnabled="false"/>
</Cluster>
-->
<!-- Normally, users must authenticate themselves to each web app
individually. Uncomment the following entry if you would like
a user to be authenticated the first time they encounter a
resource protected by a security constraint, and then have that
user identity maintained across all web applications contained
in this virtual host. -->
<!--
<Valve className="org.apache.catalina.authenticator.SingleSignOn"
debug="0"/>
-->
<!-- Access log processes all requests for this virtual host. By
default, log files are created in the "logs" directory relative to
$CATALINA_HOME. If you wish, you can specify a different
directory with the "directory" attribute. Specify either a relative
(to $CATALINA_HOME) or absolute path to the desired directory.
-->
<!--
<Valve className="org.apache.catalina.valves.AccessLogValve"
directory="logs" prefix="localhost_access_log." suffix=".txt"
pattern="common" resolveHosts="false"/>
-->
<!-- Logger shared by all Contexts related to this virtual host. By
default (when using FileLogger), log files are created in the "logs"
directory relative to $CATALINA_HOME. If you wish, you can specify
a different directory with the "directory" attribute. Specify either a
relative (to $CATALINA_HOME) or absolute path to the desired
directory.-->
<Logger className="org.apache.catalina.logger.FileLogger"
directory="logs" prefix="localhost_log." suffix=".txt"
timestamp="true"/>
<Context path="/testdb" docBase="APACHE_DIR/htdocs/testdb"
debug="5" reloadable="true" crossContext="true">
<Logger className="org.apache.catalina.logger.FileLogger"
prefix="localhost_DBTest_log." suffix=".txt"
timestamp="true"/>
<Resource name="jdbc/TestDB"
auth="Container"
type="javax.sql.DataSource"/>
<ResourceParams name="jdbc/TestDB">
<parameter>
<name>factory</name>
<value>org.apache.commons.dbcp.BasicDataSourceFactory</value>
</parameter>
<!-- Maximum number of dB connections in pool. Make sure you
configure your mysqld max_connections large enough to handle
all of your db connections. Set to 0 for no limit.
-->
<parameter>
<name>maxActive</name>
<value>10</value>
</parameter>
<!-- Maximum number of idle dB connections to retain in pool.
Set to 0 for no limit.
-->
<parameter>
<name>maxIdle</name>
<value>5</value>
</parameter>
<!-- Maximum time to wait for a dB connection to become available
in ms, in this example 10 seconds. An Exception is thrown if
this timeout is exceeded. Set to -1 to wait indefinitely.
-->
<parameter>
<name>maxWait</name>
<value>10000</value>
</parameter>
<!-- MySQL dB username and password for dB connections -->
<parameter>
<name>username</name>
<value>test</value>
</parameter>
<parameter>
<name>password</name>
<value>testpwd</value>
</parameter>
<!-- Class name for mm.mysql JDBC driver -->
<parameter>
<name>driverClassName</name>
<value>com.mysql.jdbc.Driver</value>
</parameter>
<!-- The JDBC connection url for connecting to your MySQL dB.
The autoReconnect=true argument to the url makes sure that the
mm.mysql JDBC Driver will automatically reconnect if mysqld closed the
connection. mysqld by default closes idle connections after 8 hours.
-->
<parameter>
<name>url</name>
<value>jdbc:mysql://localhost/testdb?autoReconnect=true</value>
</parameter>
</ResourceParams>
</Context>
</Host>
</Engine>
</Service>
</Server>You haven't added a resource reference for your web application that gives the application a local name for the global resource "UserDatabase".
-
802.1x machine auth w/ certificate authority
Two quick questions ...
I am building a lab for 802.1x, I want to use peap w/ mschap v2 and I want to do machine authentication only. I have AD and CA services running on a test windows 2003 server. I have ACS setup, my AD is connected, my switch is configured and now I am stuck on the CA portion and I am not sure if I am doing it right, I can't seem to find documentation that outlines this piece specific to the scenerio I described above, perhaps someone can give me a hand.
I browse to the CA, request a certificate > advanced certificate request > create and submit request to this CA >
From this point I am suppose to select a certificate template. The docs I have found say to use a "webserver" template and select the option to "export keys to file". When I attempt this the export key option is greyed out. I google and some people say only Enterprise edition supports this, I am running Enterprise R2 so I don't see the problem. All of the other templates available allow me to export except for webserver.
1) my question is for the lab scenerio I detailed above what type of certifcate template should I be using? if your answer is a "webserver" template can you perahps tell me why I cannot export to a file?
2) Do my client machines require a certificate to be installed prior to connecting to the 802.1x switch? from what I read using peap mschap v2 coupled with machine authentication you do not require a certificate on each machine. During initial 802.1x authentication the certificate will be pushed from the ACS over to the client. I believe the one caveat is that the client machine will require to be modified to list the new CA or ACS server as a trusted root authority. I need some clarity on this subject, I will not have the option to install a certicate on each machine prior to 802.1x auth. Please confirm
Any help is appreciated, thanks!
If there are any links that someone can provide that have details on this setup please shareI am going through this process currently also, and I can tell you what I have gathered so far.
These notes are applicable to Machine, or Machine & User authentication, Wired and/or Wireless 802.1x.
The certificate must be present on each client machine in order to connect. The thing that I am finding annoying is that when we used the Microsoft IAS Radius, the certificate enrollment was seamless. The domain clients just seemed to "automatically" have the certificate installed on their machines (pushed down by the Domain), that matches the certificate presented by the IAS Radius server during the authentication process (Of course, because it's all within the same domain). Easy as pie, windows magic...
But suppose we want to use Cisco ACS or our own radius server ? Well the first thing I tried was to use a Certificate signed by our internal Linux CA. The Windows domain administrator was not able to set up the Linux CA as a "trusted intermediate", which I don't fully understand. Instead he asked me to purchase a certificate from a Trusted CA such as Verisign or DigiCert. By the way I found a list of Microsoft trusted Intermediates here:
http://social.technet.microsoft.com/wiki/contents/articles/2592.aspx
The Windows Domain Administrator will do 3 things :
1) Configure Certificate Auto-Enrollment Policy for the Certificate we purchase
2) Configure the Wired & Wireless Autoconfig service settings Group Policy Objects
3) Set the Wired Autoconfig service to start.
I will have to
1) Generate the CSR & Import the puchased signed certificate into the ACS(s).
Now, that said, there must be an easier way to do this! If anyone has notes on whether or not the following is possible, it would be appreciated & interesting:
1) Can the Windows Domain sign my CSR ? If so - how
2) Can the Windows Domain be configured to trust our Linux CA ? If so - how
Good luck to you dot1xers -
Migration Best Practice When Using an Auth Source
Hi,
I'm looking for some advice on migration best practices or more specifically, how to choose whether to import/export groups and users or to let the auth source do a sync to bring users and groups into each environment.
One of our customers is using an LDAP auth source to synchronize users and groups. I'm trying to help them do a migration from a development environment to a test environment. I'd like to export/import security on each object as I migrate it, but does this mean I have to export/import the groups on each object's ACLs before I export/import each object? What about users? I'd like to leave users and groups out of the PTE files and just export/import the auth source and let it run in each environment. But I'm afraid the UUIDs for the newly created groups will be different and they won't match up with object ACLs any more, causing all the objects to lose their security settings.
If anyone has done this before, any suggestions about best practices and gotchas when using the migration wizard in conjunction with an auth source would be much appreciated.
Thanks,
Chris Bucchere
Bucchere Development Group
[email protected]
http://www.bucchere.comThe best practice here would be to migrate only the auth source through the migration wizard, and then do an LDAP sync on the new system to pull in the users and groups. The migration wizard will then just "do the right thing" in matching up the users and groups on the ACLs of objects between the two systems.
Users and groups are actually a special case during migration -- they are resolved first by UUID, but if that is not found, then a user with the same auth source UUID and unique auth name is also treated as a match. Since you are importing from the same LDAP auth source, the unique auth name for the user/group should be the same on both systems. The auth source's UUID will also match on the two systems, since you just migrated that over using the migration wizard. -
Problems Creating a Java Class using a webservice with certificate
hi,
i'm developing a java class that call's a webservice that needs a certificate, i'm not used to work with java, last time was 10 years ago, so i'm having some troubles because of the certificate.
I already add the certificate using java control panel > Security > Certificates. When testing i get the following error: IOException (java.io.IOException: subject key, Unknown key spec)
I think I need to define the certificate in my class, but i'm having a lots of trouble with the samples that i found over the internet, nothing works and i'm running out of time.
This is my Class
create or replace and compile java source named "FishInfoAt" as
import java.net.*;
import java.io.*;
import java.security.*;
public class FishInfoAt
public FishInfoAt()
public static String send(String urlfishinfoat, String mensagem, String mensagem1, String mensagem2, String mensagem3)
// Init
String response = "";
String msgtotal = mensagem+mensagem1+mensagem2+mensagem3;
String a = "";
HttpURLConnection conn = null;
try{
URL url = new URL(urlfishinfoat);
conn = (HttpURLConnection) url.openConnection();
conn.setRequestMethod("POST");
conn.setRequestProperty("Content-type", "text/xml; charset=utf-8");
conn.setRequestProperty("SOAPAction", "https://servicos.portaldasfinancas.gov.pt:401/sgdtws/documentosTransporte/");
conn.setRequestProperty("Content-Length","" + msgtotal.length());
conn.setDoOutput(true);
conn.setDoInput(true);
conn.connect();
OutputStream out = conn.getOutputStream();
out.write(msgtotal.getBytes());
out.flush();
InputStream in = conn.getInputStream();
int value;
while( (value = in.read()) != -1)
response+=(char)value;
catch(Exception e)
response = ("*** ERROR - IOException (" + e.getMessage() + a + ")");
return response;
/Hi Deepak,
Could you please let us know upto which line your code is going safe. Try printing the value in the structure before you send that to the method GetUGEntity().
I am not too sure that would be a problem. But I have faced a problem like this, wherein I tried to access a structure for which I have not allocated memory and hence got exception because of that.
Since your JNI code seems to be error free, I got doubt on your C part. Sorry.
Dhamo. -
Cannot get hardware limits to work when using Lintech switches with a ACR9000 motion controller
This has been my conversation with Parker Automation.
From: Susan Connors <[email protected]>
Date: April 21, 2015 at 8:52:55 AM CDT
To: Bowlerdusty <[email protected]>
Subject: Re: ACR 9000
Hi Dustin,
Since the product was not purchased from us, or through the Parker website, but through National Instruments, you would need to contact them and they should be able to help.
Regards,
Susan
Susan Connors
Customer Service Representative
Cross Company - Automation Group
Employee Owned Since 1979
Direct Dial: 704-755-1048 Fax: 704-523-6500
Toll Free: 1-800-866-4568 ext 5352
On Mon, Apr 20, 2015 at 4:16 PM, Bowlerdusty <[email protected]> wrote:
Hi again. Since last speaking, we have gotten the motor to move. The only thing we are struggling on now is getting the hardware limits to work. We are using switches provided by Lintech. One pair of switches is mechanical and the other pair are non-contact reed switches. I found out earlier that the product was purchased from National Instruments Co. Anyway we could receive some help with this?
Thanks,
Dustin Brown
-----Original Message-----
From: Susan Connors <[email protected]>
To: Bowlerdusty <[email protected]>
Sent: Tue, Feb 3, 2015 12:52 pm
Subject: Re: ACR 9000
Dustin,
I am checking with our manager and engineers on this and will let you know.
Regards,
Susan
Susan Connors
Customer Service Representative
Cross Company Automation Group - Employee Owned Since 1979
Direct Dial: 704-755-1048 Fax: 704-523-6500
[email protected]
www.cross-automation.com
Cross Automation Line Card
We welcome your feedback on our customer support team. Please email my manager: [email protected]
On Mon, Feb 2, 2015 at 3:10 PM, Bowlerdusty <[email protected]> wrote:
Could it possibly be under some other name? There are other divisions it could possible be under. This place is also under the U.S. Army Corps of Engineers, so it might be under that name. And if this wasn't purchased from this company, then where was it purchased from? This is the company I was sent to when I contacted the Parker Motion support.
-----Original Message-----
From: Susan Connors <[email protected]>
To: bowlerdusty <[email protected]>
Sent: Fri, Jan 30, 2015 4:13 pm
Subject: Fwd: ACR 9000
Hello,
We have checked and show no record of your company or this part being purchased from us, so this is not something that we can offer support.
I do not know of an integrator in your area but you should contact a local one that could possibly help you trouble-shoot any questions you have on this unit.
Regards,
Susan
Susan Connors
Customer Service Representative
Cross Company Automation Group - Employee Owned Since 1979
Direct Dial: 704-755-1048 Fax: 704-523-6500
[email protected]
www.cross-automation.com
Cross Automation Line Card
We welcome your feedback on our customer support team. Please email my manager: [email protected]
---------- Forwarded message ----------
From: Bowlerdusty <[email protected]>
Date: Fri, Jan 30, 2015 at 3:59 PM
Subject: Re: ACR 9000
To: [email protected]
Any idea of when I'll get a response?
-----Original Message-----
From: AG Sales Fax <[email protected]>
To: bowlerdusty <[email protected]>
Sent: Fri, Jan 30, 2015 11:03 am
Subject: Fwd: ACR 9000
-- Can you please advise Company name and location so I can forward to appropriate contact?
---------- Forwarded message ----------
From: 'Bowlerdusty' via [email protected] <[email protected]>
Date: Fri, Jan 30, 2015 at 10:32 AM
Subject: ACR 9000
To: [email protected]
I was told to contact you guys for help with this. Can you be of some assistance?
-----Original Message-----
From: jhoagland <[email protected]>
To: Bowlerdusty <[email protected]>
Sent: Thu, Jan 29, 2015 3:44 pm
Subject: Re: ACR9000
There are free training videos on our website:
http://www.parkermotion.com/products/Controllers__6934__30_32_80_567_29.html
This unit was purchased through Cross Automation.
They are your local Parker ATC distributor and can give you assistance though the unit is out of warranty.
Their phone number is: 704-523-2222
Let me know if there’s any questions. Have a nice day.
Regards,
Jonathan
-----Original Message-----
From: Bowlerdusty < [email protected]>
To: emn_applications < [email protected]>
Sent: Thu, Jan 29, 2015 2:57 pm
Subject: Fwd: ACR9000
Here is a pic of the serial number and model number.
-----Original Message-----
From: emn_applications < [email protected]>
To: Bowlerdusty < [email protected]>
Sent: Thu, Jan 29, 2015 11:36 am
Subject: Re: ACR9000
On the other side of the ACR9000 is a label with the model number, SO and
serial number. Please provide.
Regards,
Jonathan
Application Engineering Team
[email protected]
phone 800-358-9070 · international 1-707-584-7558
www.parkermotion.com
Parker Hannifin Corporation · Electromechanical Automation, NA
5500 Business Park Drive · Rohnert Park · CA · 94928
Bowlerdusty <[email protected]>
To
[email protected]
01/29/2015 09:19 AM
cc
Subject
Re: ACR9000
I honeslty don't know this information. This stuff was bought at least a
few years ago. A student who is now gone had put it together a while back.
There were a lot of binders with it for instructions but none of it was
very clear to me. I'm sending pictures with the parts I have
(controller,drive,motor,etc.).
-----Original Message-----
From: emn_applications <[email protected]>
To: Dustin Brown <[email protected]>
Sent: Wed, Jan 28, 2015 10:17 am
Subject: Re: ACR9000
OK. So now you'd program it using the Configuration Wizard in ACR-View and
the program editor.
Which Parker ATC distributor did you purchase this through?
Regards,
Jonathan
Application Engineering Team
[email protected]
phone 800-358-9070 · international 1-707-584-7558
www.parkermotion.com
Parker Hannifin Corporation · Electromechanical Automation, NA
5500 Business Park Drive · Rohnert Park · CA · 94928
Dustin Brown <[email protected]>
To
[email protected]"
01/28/2015 07:58 AM <
[email protected]>
cc
Subject
Re: ACR9000
Hi thanks for the reply. We got it connected via Ethernet now. We had to
change the IP address of "local area connection" on the computer to
192.168.10.1 for it to see the controller. So now that it is connecting to
the controller, it keeps saying that the drives are all disabled. I have
one drive connected to the controller in the Axis 0 port.
Sent from my iPhone
On Jan 27, 2015, at 3:56 PM, [email protected] wrote:
> Did you change your PC's IP address?
>
> VIDEO: How to set your PC's Ethernet IP address
>
http://www.parkermotion.com/dmxreadyv2/faqsmanager/faqsmanager.asp?category=116&knowledgebase=faqman...
>
>
> Default is 192.168.10.40
>
> Is this a new ACR9000?
> If you don't know the IP address and the default doesn't work, you'll
need
> to connect via USB or serial to get the IP address or reset it.
>
> Regards,
>
> Jonathan
>
> ________________________________________________________________________
> Application Engineering Team
> [email protected]
> phone 800-358-9070 · international 1-707-584-7558
> www.parkermotion.com
> Parker Hannifin Corporation · Electromechanical Automation, NA
> 5500 Business Park Drive · Rohnert Park · CA · 94928
>
>
>
>
>
>
>
> Bowlerdusty <[email protected]>
To
>
[email protected]
> 01/27/2015 01:48 PM
cc
>
>
Subject
> ACR9000
>
>
>
>
>
> I am having a little trouble getting a connection between the ACR view
> software and the ACR 9000. I am attempting to use an ethernet cable for
> the connection. Every time I press the "connect" button it says "Failed
> attempting to connect to controller". Do you have any advice?
>
> Thanks,
> Dustin Brown
>
>
>
>
(See attached file: IMG_0864.JPG)(See attached file: IMG_0865.JPG)(See
attached file: IMG_0866.JPG)(See attached file: IMG_0867.JPG)(See attached
file: IMG_0868.JPG)(See attached file: IMG_0869.JPG)
1 Attached Images
Solved!
Go to Solution.
Attachments:
image.jpg 938 KB
image.jpg 1570 KB
image.jpg 767 KBHi thanks for the reply. Yes I have used the ACR view to specify which inputs to use before. I used input 0 for the positive limit, input 1 for the negative limit, and input 2 for the home switch. However, when using ACR view the switch kept displaying that the switch had been tripped when nothing was pressing against it. I would also try pressing on the mechanical switch to see at least if the value would change but to no avail.
Attachments:
image1.JPG 1642 KB
image3 (1).JPG 3768 KB
image2 (1).JPG 3247 KB
Maybe you are looking for
-
Using formats of SO10 text in Adobe forms
Hello guys, I got a question concerning the interaction of SO10 texts with adobe form text fields. I know there are some threads about it here, and I think I understand the default SAP behavior, but can you please confirm if I am right? Then I got a
-
Updation Of Database in offline scenario
Hi experts, The scenario is, Suppose a user who is not connected to R/3 system or to a company's intranet is having a PDF file.After entering the values in the editable fields when he presses the submit button, all the details should get update in th
-
Today i Upgraded 10.0.2 with my older version after upgradation i started the firefox all my saved passwords are showed in saved password except the passwords from gmail and facebook when i checked the exceptions it shows those passwords will not be
-
Oracle 10g as a resource in IDM 6.0
Hi, I am a newbie and I am trying to configure Oracle10g as a resource in IDM6.0. I have installed Oracle10g on WinXP and have copied the classes2.zip file from Oracle folder and pasted it in the web-inf/lib folder(renamed to oraclejdbc.jar) and have
-
Hi, I've paced a Spry tabbed panel into a page below 3 thumbnails of images, you click on the tab and a larger image drops down, that works just fine but I can't figure out how to have the contents of all tabs to be empty on load so no large images i